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By the foregoing, Claims 
canceled, and Claims 19-31 have 
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REMARKS i 
1 1 , and 1 8 have been! amended, no claims have been 
l(een added. Claims 1 1 are pending in the ^plication. 
Initially, the Examiner is t [ anked fdr initialling and returning the PTO/SB/08A submitted 
by the Applicants on May 20, 20C 4. ! 

Page 2 of the Office Actio i i sets forth a rejection of independent claims 1,11, and 1 8, and 
dependent claims 2-10 and 12-17 iis being ^ticipatedunber 35 U.S.C. § 102(e) by Patent 
Application Publication 2004/00 M694A1 fo DeTr^eville. I 

Independent claim 1 is dir I cted to a< central processing unit including means for 
processing computer instructions [ omprisidg means for receiving computer instructions and 
means for executing computer ins j ructions;' a secure metnory unit coupled to said processing 
means, said secure mCTiory unit h \ ving on^ or more resident security check programs for 
determine whether the computer 1 [ is been tampered withJ When said means for processing 

infonnation receives a secure atte 3 tion instruction through said receiving means said means for 

! ■ i i i 
executing computer instructions e i ecutes t^e security check program by retrieving its 

J -I ' i 

instructions from the secure memi i ry. j | 

' ' I 

Claim 1 has been amendec to recitejthat the resident security check programs detennine 

I . i \ 

whether the computer has been taj i iperediwitfa. j 

DeTreville is directed to a ! ystem fpr authenticating an open computer system with a 



\ 

. .J : 

r • • ' 
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portable IC device. As discussec 
publicly accessible, for example, 
particular, DeTreville discloses a 
certificates of authenticity to the *smart card*' before the 
sensitive information to the appU Nations ^executing 



authenticated boot methodology. 
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in DeTreville, an 



ope^** computer system is one that is 
a compuer in a hotel r<^m, a kiosk, or a shopping mall, hi 
system that allowjs an £n open computer system to provide 
smart card reveals private or other 
on the system. See para [0010] - [0012], As 



discussed in para [001 1], the app jcations running 6n thei computer are authenticated using an 



applications running on the comp pter are authenticated t9 IC device 1 16". Paragraph [0037] 
explains two methods. One way p support such authentication is refeired to as '^authenticated 
boot methodology", the operating system on the computi is able to prove its identity to the 
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Para [0036] furthjer describes that "one or more of the 



such code must be executed withi \ a privhe^ opeiating; mode of the processor not accessible to 



non-trusted software, or from a se ijarate secure processor 



curtained code can only be execut k &ord particular 



Another way is to use a cxutaining 



microprocessor and thereby certif ^ that ill is trusted' 
methodology, wherein ♦Vusted ap plicatidnS can be kecuted in a secure manner regardless of the 

trustworthiness of the operating s; ^tem"J 

j ! 

According to paragraph [C j o4] of DeTreville, "TDie trusted code that is pennitted to 
perform secure operations and to : ilandle $ecret data 



is cal 



ed curtained code. In other systems. 



In the present invention, however. 



locations in memory. If this memory is 



made secure against intrusion, the (die curtfained code caij be trusted by third parties. Other 
features restrict subversion throug i attempts at parti;il or i^odified execution of the curtained 



I . ! 

• ;: i 
1 "1 
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The OfiBce Action indicates that piTreville's cdtained code is believed to correspond to 
the claimed security check progn un. Hdwjever, there is no disclosure in DeTreville that the 
curtained code determines wheth^ the computer has beeji tampered with. Instead, the curtained 
code allows execution of code wi thin th4 ctartained regi^i whether or not the computer has been 
tampered with, as long as the ent^ poin^ ii an outer ring of the curtained region is secure. 
According to DeTreville at [0037|], "usiitg fhe curtaimng|methodology, trusted applications can 
be executed in a secure manner n sgardless j>f the tmstwoithiness of the operating system. A 
security manager coordinates sue i execujtic|n, and eto pr|>vide certificates proving that particular 
applications are executing in a sei sure m^ier." Thus, thfe curtaining methodology allows 
programs to run within a curtainep memory ring te^ardlebs of the statiis of the computer areas 
outside the ring. 

Accordingly, the DeTreville curti^ed code canned correspond to the claimed security 

the conipi iter has Been tampered with, and DeTreville therefore 
iet forth in amended cliim 1 . Reexamination and allowance of 

Claim 1 is requested. 

Claim 1 has also been amended to' dielete languagdi; not believed to be necessary for 
patentabiUty stating that the mean I for exfec ating computi instructions interrupts the instructions 
it is executing. New claim 22 depends fr^ claimliand ^eludes this featiire that was previously 
set forth in claim I, 



program that determines whether 
does not discluse all the features 
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Claim 
1 is 



c f a secure attentibh instruction 



i i 

secure meirioiy 



For at least these reasons, 
withdrawal of the rejection of Cl^ 

Independent claim 18 haslalso 
program that determines whetherf the 
allowable for at least the same reasons 

Indq)endent claim 1 1, diijscted to 9 
the feature that upon the receipt 
one or more check programs frov^ the 
has been ta mpered with and, upoA^ 
check program is satisfactory, the 
values transmitted to the source 

As discussed in the 
programs from the secure memoi^ unit for 
with. Accordingly, withdrawal 

Although the dependent c 
reasons that claims 1,11, and 18 
prosecution. 

Dependrat claim 19 recite^ that tl^d 
present. Dependent claim 20 recites ^piat the 
least one of malicious instruction^ viruselsj 



the ex B( nition oif ihe 
cryptogi^iiphic ciie ck 

1 ; 
} 

secpre attentiicn 
paragijaphs abd^e, there 



of the I 



determinjing 



of therejecl|bnof<ilaim IB 



aims are believed 



iire allowable, a fp^ comments 
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li js believed to |be allowable over DeTreville, and 
ijtspectfiilly 

!■ i 

beeij^ amendeid to 

i i 

coiii|iuter hak been 

i ■ i I 

i . i i 

ttiat claim I lis allt>wable 

i I 

central processmg 



recuested. 
include the feature that a security check 
tampered with, and is believed to be 



unit 



s no 



peceptijv 

i 



ig|018 
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k<y 



unit, has been amended to include 
by the CPU, the CPU executes 
for determining ^b^h^r the compnter 
security check program if the result of the 

is used to authenticate the result 
in|struction. 

disclosure in DeTreville of a check 
V hether the computer has been tampered 
is requested. 

to be allowable for at least the same 
are {Provided to further 



system detenjfiines whethjer a deceptive interpreter is 
securitjy check programs determine whether at 
iiitejrpreters, and Trojan horses are present. 
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DeTreville does not disclose a 
Office Action indicates that 
security check program. For 
code that is pennitted to perform 
disclose that the curtained code 
viruses, deceptive inteipreters, 
are present. 

Claims 19 and 20 are 

Claim 21 sets forth that 
results of the security check 
memory unit and, and an incorredt 
decqjtive interpreter. DeTrevillti 

New claims 22-31 set 
to be entitled, directed to subject 

In view of the foregoing 
allowance of the present appli 



s^urity oK^ck program 
DeTi-eville'$ durtained code 
ex^ple, DjefTreville at [0 
and 
whether at 
lorses are 



qetermiqesi 
Trojan 



all< ►wable iver DeTreville: 



pie, 
secure 



offerations i 
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having 



least 



present. 



following t|ie security ch^k 
program and tifansmits an 

or absert authentication 
does riotfdisclose at 
fort|i additi|o4al subject 
^natter lio^; found in the 
a|nendmiefl|ts and remark^. 



: legist 



t ma Iter 



cati >n is resp ectfully requejited 



13)019 
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either of these features. The 
is believed to correspond to the claimed 
04] defines curtained code as the trusted 
handle secret data. DeTreville does not 
one of malicious instructions, 
or whethCT deceptive interpreters 



for at least these additional reasons. 
, the processing means transmits 
aujthentication value firom the secure 
value indicates the presence of a 
this additional feature, 
to which the applicants are believed 
I yted references, 
reconsideration, reexamination, and 
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Should there be any 
the examiner is cordially invited 



quesiions regarding tips Amendment 



or the application in general, 
(o contictthe im|iersigi|ed at the number listed below. 

- iespectfiilly sul^itted. 



Date: April 26. 2Q05 



Naval Research Laboratory 
Office of Associate Counsel (Patents) 
4555 Overlook Ave., SW 20375 ' 
(202) 404^1551 
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